General

  • Target

    42e85a3b407f1baea27f8ad52d287b80_NeikiAnalytics

  • Size

    94KB

  • Sample

    240509-qj6ylsed52

  • MD5

    42e85a3b407f1baea27f8ad52d287b80

  • SHA1

    4828a05e88f6142441099f711de9c00dec34ff3d

  • SHA256

    0af52c83c89a97f0c7919f2febc99acb0c75ed990e497237a679224bbde2b3c0

  • SHA512

    319a609713765b5f07e8836232be805781ef1aca645f53ca0b7e7d49dfe22ce4186f77e5a5f95d3f48bc94b44ea52e9e92080006a2630a35a4531cb4656fd281

  • SSDEEP

    1536:oM6mEdyxISIrmap/P5yCC35aQr6BWNkn4im1aW3SnrHDjmRQDaRfRa9HprmRfRZ:oMtE3JmOvEaQeBWFi9JnrHDKeDa5wkpv

Malware Config

Targets

    • Target

      42e85a3b407f1baea27f8ad52d287b80_NeikiAnalytics

    • Size

      94KB

    • MD5

      42e85a3b407f1baea27f8ad52d287b80

    • SHA1

      4828a05e88f6142441099f711de9c00dec34ff3d

    • SHA256

      0af52c83c89a97f0c7919f2febc99acb0c75ed990e497237a679224bbde2b3c0

    • SHA512

      319a609713765b5f07e8836232be805781ef1aca645f53ca0b7e7d49dfe22ce4186f77e5a5f95d3f48bc94b44ea52e9e92080006a2630a35a4531cb4656fd281

    • SSDEEP

      1536:oM6mEdyxISIrmap/P5yCC35aQr6BWNkn4im1aW3SnrHDjmRQDaRfRa9HprmRfRZ:oMtE3JmOvEaQeBWFi9JnrHDKeDa5wkpv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks